/// <summary> /// 演示用户权限完成文件读写和加解密操作 /// </summary> /// <returns></returns> public static UInt32 UserUseDevice() { //1.枚举锁 //2.打开锁 //3.验证用户PIN //4.修改用户PIN //5.读只读文件 //6.修改可读写数据文件 //7.使用密钥文件加解密(AES128) //8.使用密钥文件(HMAC)计算Hash值 //9.关闭锁 UInt32 ret = MowayCS.MW_SUCCESS; UInt32 devInfoArraySize = 32; // 获取设备的最大数量 MW_DEVICE_INFO_CTX[] devInfoArray = new MW_DEVICE_INFO_CTX[devInfoArraySize]; UInt32 devCount = 0; IntPtr hHandle = IntPtr.Zero; //1.枚举锁 ret = MowayCS.mw_enum(devInfoArray, devInfoArraySize, ref devCount); if (ret != MowayCS.MW_SUCCESS) { Console.WriteLine("mw_enum failed, {0:X8}", ret); return(ret); } if (devCount == 0) { Console.WriteLine("Not found device"); return(ret); } //2.打开锁 ret = MowayCS.mw_open(ref devInfoArray[0], MowayCS.MW_OPEN_EXCLUSIVE_MODE, ref hHandle); if (ret != MowayCS.MW_SUCCESS) { Console.WriteLine("mw_open failed, {0:X8}", ret); return(ret); } //3.验证用户PIN ret = MowayCS.mw_verify_pin(hHandle, Convert.ToByte(MowayCS.MW_PIN_TYPE_USER), Encoding.ASCII.GetBytes(Program.userPIN)); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_verify_pin success PIN = {0}", Program.userPIN); } else { Console.WriteLine("mw_verify_pin failed, {0:X8}", ret); MowayCS.mw_close(hHandle); return(ret); } //4.修改用户PIN byte[] oldPIN = Encoding.ASCII.GetBytes(Program.userPIN); byte[] newPIN = Encoding.ASCII.GetBytes(Program.userPIN); // 本例仅用于演示接口使用方法,设置新PIN与旧PIN相同。 UInt16 limitCount = 0; // 使用默认值不限制重试次数 ret = MowayCS.mw_change_pin(hHandle, Convert.ToByte(MowayCS.MW_PIN_TYPE_USER), limitCount, oldPIN, newPIN); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_change_pin success oldPIN = {0}, newPIN = {1}.", Program.userPIN, Program.userPIN); } else { Console.WriteLine("mw_change_pin failed, {0:X8}", ret); } //5.读只读文件 byte[] readBuffer = null; UInt32 readBufferLen = 0; UInt32 readOffset = 0; readBuffer = new byte[128]; readBufferLen = (UInt32)userUseFileData.Length; ret = MowayCS.mw_read_file(hHandle, userRDFilename, readOffset, readBufferLen, readBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_read_file {0} success, {1}", userRDFilename, Encoding.ASCII.GetString(readBuffer)); } else { Console.WriteLine("mw_read_file {0} failed, {1:X8}", userRDFilename, ret); } //6.修改可读写数据文件 // 6.1 向可读写文件写入数据 byte[] writeBuffer = Encoding.ASCII.GetBytes("user privilege write!"); UInt32 writeOffset = 0; UInt32 writeBufferLen = (UInt32)writeBuffer.Length; ret = MowayCS.mw_write_file(hHandle, userRWFilename, writeOffset, writeBufferLen, writeBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_write_file {0} success.", userRWFilename); // 6.2 读取可读写文件内容 readBufferLen = (UInt32)readBuffer.Length; // 重置缓冲区长度 ret = MowayCS.mw_read_file(hHandle, userRWFilename, readOffset, readBufferLen, readBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_read_file {0} success, {1}", userRWFilename, Encoding.ASCII.GetString(readBuffer)); } else { Console.WriteLine("mw_read_file {0} failed, {1:X8}", userRWFilename, ret); } } else { Console.WriteLine("mw_write_file {0} failed, {1:X8}", userRWFilename, ret); } //7.使用密钥文件加解密(AES128) string encrypTestData = "1234567890123456"; byte[] data = Encoding.ASCII.GetBytes(encrypTestData); UInt32 dataLen = (UInt32)data.Length; byte[] iv = null; byte[] encryptData = new byte[128]; UInt32 encryptDataLen = (UInt32)encryptData.Length; byte[] decryptData = new byte[128]; UInt32 decryptDataLen = (UInt32)decryptData.Length; // 7.1 数据加密 ret = MowayCS.mw_sym_encrypt(hHandle, keyAES128Filename, Convert.ToByte(MowayCS.MW_SYM_ALGO_MODE_ECB), null, data, dataLen, encryptData, ref encryptDataLen); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_sym_encrypt({0}) success, encryptDataLen = {1}", keyAES128Filename, encryptDataLen); // 7.2 数据解密 ret = MowayCS.mw_sym_decrypt(hHandle, keyAES128Filename, Convert.ToByte(MowayCS.MW_SYM_ALGO_MODE_ECB), null, encryptData, encryptDataLen, decryptData, ref decryptDataLen); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_sym_decrypt {0} success, {1}", keyAES128Filename, Encoding.ASCII.GetString(decryptData)); // 比较加解密数据 if (Program.CompareBytes(data, decryptData, (int)dataLen)) { Console.WriteLine("data == decryptData"); } } else { Console.WriteLine("mw_sym_decrypt({0}) failed, {1:X8}", keyAES128Filename, ret); } } else { Console.WriteLine("mw_sym_encrypt {0} failed, {1:X8}", keyAES128Filename, ret); } //8.使用密钥文件(HMAC)计算Hash值 byte[] hmacData = new byte[128]; // 重置数据 UInt32 hmacDataLen = (UInt32)hmacData.Length; ret = MowayCS.mw_hmac_calc(hHandle, keyHMACMD5Filename, data, dataLen, hmacData, ref hmacDataLen); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_hmac_calc({0}) success, md5 = {1}", keyHMACMD5Filename, BitConverter.ToString(hmacData)); } else { Console.WriteLine("mw_hmac_calc {0} failed, {1:X8}", keyHMACMD5Filename, ret); } //9.关闭锁 MowayCS.mw_close(hHandle); return(MowayCS.MW_SUCCESS); }
/// <summary> /// 开发者设置加密锁并初始化 /// </summary> /// <returns></returns> /// <remarks>出厂加密锁必须进行初始化后才能使用文件操作、加解密等功能。</remarks> public static UInt32 DeveloperInitDevice() { //1.枚举锁 //2.打开锁 //3.验证开发商PIN //4.设置PID //5.修改开发商PIN //6.创建文件(二进制、读写、密钥文件-AES128、密钥文件-HMAC) //7.关闭锁 UInt32 ret = MowayCS.MW_SUCCESS; UInt32 devInfoArraySize = 32; // 获取设备的最大数量 MW_DEVICE_INFO_CTX[] devInfoArray = new MW_DEVICE_INFO_CTX[devInfoArraySize]; UInt32 devCount = 0; IntPtr hHandle = IntPtr.Zero; //1.枚举锁 ret = MowayCS.mw_enum(devInfoArray, devInfoArraySize, ref devCount); if (ret != MowayCS.MW_SUCCESS) { Console.WriteLine("mw_enum failed, {0:X8}", ret); return(ret); } if (devCount == 0) { Console.WriteLine("Not found device"); return(ret); } //2.打开锁 ret = MowayCS.mw_open(ref devInfoArray[0], MowayCS.MW_OPEN_EXCLUSIVE_MODE, ref hHandle); if (ret != MowayCS.MW_SUCCESS) { Console.WriteLine("mw_open failed, {0:X8}", ret); return(ret); } //3.验证开发商PIN ret = MowayCS.mw_verify_pin(hHandle, Convert.ToByte(MowayCS.MW_PIN_TYPE_DEVELOPER), Encoding.ASCII.GetBytes(Program.developerPIN)); if (ret != MowayCS.MW_SUCCESS) { Console.WriteLine("mw_verify_pin failed, {0:X8}", ret); MowayCS.mw_close(hHandle); return(ret); } //4.设置PID // 4.1 设置PID前获取加密锁信息 MW_DEVICE_ALL_ITEM_INFO devAllItemInfo = new MW_DEVICE_ALL_ITEM_INFO(); UInt32 devAllItemInfoSize = (UInt32)Marshal.SizeOf(devAllItemInfo); ret = MowayCS.mw_get_device_all_info(hHandle, Convert.ToByte(MowayCS.MW_GET_INFO_ITEM_ALL), ref devAllItemInfo, ref devAllItemInfoSize); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_get_device_all_info pid = {0}", devAllItemInfo.PID); } else { Console.WriteLine("mw_get_device_all_info failed, {0:X8}", ret); } // 4.2 设置加密锁PID byte[] PIDSeed = Encoding.ASCII.GetBytes("12345678"); // PID由加密锁根据PIDSeed,相同的PIDSeed 生成的PID相同。 // 通常情况下,开发者通过PID来区分当前加密锁是否为本公司产品对应加密锁。 // 开发者也可为每一款产品对应加密锁分配独立的PID。 UInt32 PIDSeedLen = (UInt32)PIDSeed.Length; ret = MowayCS.mw_set_pid(hHandle, PIDSeed, PIDSeedLen); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_set_pid success."); } else { Console.WriteLine("mw_set_pid failed, {0:X8}", ret); } // 4.3 查看生成PID ret = MowayCS.mw_get_device_all_info(hHandle, Convert.ToByte(MowayCS.MW_GET_INFO_ITEM_ALL), ref devAllItemInfo, ref devAllItemInfoSize); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_get_device_all_info pid = {0}", devAllItemInfo.PID); } else { Console.WriteLine("mw_get_device_all_info failed, {0:X8}", ret); } //5.修改开发商PIN string currentDeveloperPIN = Program.developerPIN; byte[] oldPIN = Encoding.ASCII.GetBytes(currentDeveloperPIN); byte[] newPIN = Encoding.ASCII.GetBytes(Program.developerPIN); // 本例仅用于演示接口使用方法,设置新PIN与旧PIN相同。 UInt16 limitCount = 0; // 使用默认值不限制重试次数 ret = MowayCS.mw_change_pin(hHandle, Convert.ToByte(MowayCS.MW_PIN_TYPE_DEVELOPER), limitCount, oldPIN, newPIN); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_change_pin success oldPIN = {0}, newPIN = {1}.", currentDeveloperPIN, Program.developerPIN); } else { Console.WriteLine("mw_change_pin failed, {0:X8}", ret); } //6.创建文件(二进制、读写、密钥文件-AES128、密钥文件-HMAC) byte[] writeBuffer = null; UInt32 writeOffset = 0; UInt32 writeBufferLen = 0; // 6.1 创建二进制用户权限只读文件 // 6.1.1 创建锁内文件 MW_FILE_PROPERTY fileProperty = new MW_FILE_PROPERTY(userRDFilename); fileProperty.ucType = Convert.ToByte(MowayCS.MW_FILE_TYPE_BINARY); fileProperty.usPrivilege = Convert.ToByte(MowayCS.MW_FILE_PRIV_TYPE_READ); fileProperty.uiSize = 128; ret = MowayCS.mw_delete_file(hHandle, userRDFilename); ret = MowayCS.mw_create_file(hHandle, ref fileProperty); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ) {0} success.", userRDFilename); } else if (ret == MowayCS.MW_ERROR_INVALID_DEVICE_FILE_HANDLE) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ) {0} existed.", userRDFilename); } else { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ) {0} failed, {1:X8}", userRDFilename, ret); } // 6.1.2 向(用户权限)只读文件写入数据 writeBuffer = Encoding.ASCII.GetBytes(userUseFileData); writeOffset = 0; writeBufferLen = (UInt32)writeBuffer.Length; ret = MowayCS.mw_write_file(hHandle, userRDFilename, writeOffset, writeBufferLen, writeBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_write_file(MW_FILE_PRIV_TYPE_READ) {0} success.", userRDFilename); } else { Console.WriteLine("mw_write_file(MW_FILE_PRIV_TYPE_READ) {0} failed, {1:X8}", userRDFilename, ret); } // 6.2 创建二进制用户权限可读写文件 // 6.2.1 创建锁内文件 fileProperty = new MW_FILE_PROPERTY(userRWFilename); fileProperty.ucType = Convert.ToByte(MowayCS.MW_FILE_TYPE_BINARY); fileProperty.usPrivilege = Convert.ToByte(MowayCS.MW_FILE_PRIV_TYPE_READ_WRITE); fileProperty.uiSize = 128; ret = MowayCS.mw_delete_file(hHandle, userRWFilename); ret = MowayCS.mw_create_file(hHandle, ref fileProperty); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ_WRITE) {0} success.", userRWFilename); } else if (ret == MowayCS.MW_ERROR_INVALID_DEVICE_FILE_HANDLE) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ_WRITE) {0} existed.", userRWFilename); } else { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_READ_WRITE) {0} failed, {1:X8}", userRWFilename, ret); } // 6.2.2 向(用户权限)可读写文件写入数据 writeBuffer = Encoding.ASCII.GetBytes(userUseFileData); writeOffset = 0; writeBufferLen = (UInt32)writeBuffer.Length; ret = MowayCS.mw_write_file(hHandle, userRWFilename, writeOffset, writeBufferLen, writeBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_write_file(MW_FILE_PRIV_TYPE_READ_WRITE) {0} success.", userRWFilename); } else { Console.WriteLine("mw_write_file(MW_FILE_PRIV_TYPE_READ_WRITE) {0} failed, {1:X8}", userRWFilename, ret); } // 6.3 创建密钥文件-AES128 // 6.3.1 创建锁内文件 fileProperty = new MW_FILE_PROPERTY(keyAES128Filename); fileProperty.ucType = Convert.ToByte(MowayCS.MW_FILE_TYPE_KEY); fileProperty.usPrivilege = Convert.ToByte(MowayCS.MW_FILE_PRIV_TYPE_USE); fileProperty.uiSize = 128; ret = MowayCS.mw_delete_file(hHandle, keyAES128Filename); ret = MowayCS.mw_create_file(hHandle, ref fileProperty); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} success.", keyAES128Filename); } else if (ret == MowayCS.MW_ERROR_INVALID_DEVICE_FILE_HANDLE) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} existed.", keyAES128Filename); } else { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} failed, {1:X8}", keyAES128Filename, ret); } // 6.3.2 读取本地密钥文件数据并写入加密锁 FileStream fileStreamAES128 = new FileStream(keyAES128Filename, FileMode.Open); BinaryReader bReaderAES128 = new BinaryReader(fileStreamAES128); writeBuffer = bReaderAES128.ReadBytes((int)fileStreamAES128.Length); writeOffset = 0; writeBufferLen = (UInt32)writeBuffer.Length; ret = MowayCS.mw_write_file(hHandle, keyAES128Filename, writeOffset, writeBufferLen, writeBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_write_file(MW_FILE_TYPE_KEY) {0} success.", keyAES128Filename); } else { Console.WriteLine("mw_write_file(MW_FILE_TYPE_KEY) {0} failed, {1:X8}", keyAES128Filename, ret); } // 6.4 创建密钥文件-HMAC // 6.3.1 创建锁内文件 fileProperty = new MW_FILE_PROPERTY(keyHMACMD5Filename); fileProperty.ucType = Convert.ToByte(MowayCS.MW_FILE_TYPE_KEY); fileProperty.usPrivilege = Convert.ToByte(MowayCS.MW_FILE_PRIV_TYPE_USE); fileProperty.uiSize = 128; ret = MowayCS.mw_delete_file(hHandle, keyHMACMD5Filename); ret = MowayCS.mw_create_file(hHandle, ref fileProperty); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} success.", keyHMACMD5Filename); } else if (ret == MowayCS.MW_ERROR_INVALID_DEVICE_FILE_HANDLE) { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} existed.", keyHMACMD5Filename); } else { Console.WriteLine("mw_create_file(MW_FILE_PRIV_TYPE_USE) {0} failed, {1:X8}", keyHMACMD5Filename, ret); } // 6.3.2 读取本地密钥文件数据并写入加密锁 FileStream fileStream = new FileStream(keyHMACMD5Filename, FileMode.Open); BinaryReader bReader = new BinaryReader(fileStream); writeBuffer = bReader.ReadBytes((int)fileStream.Length); writeOffset = 0; writeBufferLen = (UInt32)writeBuffer.Length; ret = MowayCS.mw_write_file(hHandle, keyHMACMD5Filename, writeOffset, writeBufferLen, writeBuffer); if (ret == MowayCS.MW_SUCCESS) { Console.WriteLine("mw_write_file(MW_FILE_TYPE_KEY) {0} success.", keyHMACMD5Filename); } else { Console.WriteLine("mw_write_file(MW_FILE_TYPE_KEY) {0} failed, {1:X8}", keyHMACMD5Filename, ret); } //7.关闭锁 MowayCS.mw_close(hHandle); return(MowayCS.MW_SUCCESS); }